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Response to Amendment 

This office action is responsive to Applicant's amendment received on 2/16/2007. 
Claims 1-8, 11, 12, 14-24, and 27-31 are cancelled. Claims 9, 13, and 25 have been 
amended to independent form. Claims 9, 10,13, 25, and 26 remain pending in the 
application. 

Allowable Subject Matter 

The indicated allowability of claims 9-10, 13, and 25 is respectfully withdrawn in 
view of the newly discovered reference(s) to U.S. Patent Application 6,275,944 to Kao 
et al and U.S. Publication Application 2003/0191817 to Fidler. Therefore the finality of 
the previous Office action has been withdrawn, and rejections based on the newly cited 
reference(s) follow. 

Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

Claim 13 is rejected under 35 U.S.C. 102(b) as being anticipated by Kao et al., 
(U.S. Patent Application No. 6,275,944 and Kao hereinafter). 
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Regarding claim 13, Kao discloses a generic system for integrating a target 
application to an authentication system for authenticating users of the target application, 
the generic system comprising a server coupled to a database of configuration 
information about a login process for the target application (i.e., The first database PKM 
is a globally accessible database wherein all PKM functions preferably are implemented 
by the PKM server)(col. 5, lines 35-50 and col. 6, lines 64-67 and col. 7, lines 1-49),, the 
server being programmed to access the database of configuration information to 
conduct the login process with a user of the target application and to use the 
authentication system to authenticate the user and to enable the user to access the 
target application once the authentication system has authenticated the user (col. 8, 
lines 26-67 and col. 9, lines 1-50), the generic system further including an administrative 
application for permitting a system administrator to create and edit the configuration 
information (i.e., performing a given action carried out with respect to users' systems 
and applications for example, a logon operation, a change of password operation, or a 
logoff operation )(col. 7, lines 24-63), wherein the server is programmed with a plurality 
of authentication modules for integrating respective target applications to the 
authentication system, and the server is programmed with an authentication module 
controller for directing user login requests to the respective authentication modules (col. 
6, lines 64-67 and col. 7, lines 1-49). 
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Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

Claims 9-10 and 25-26 are rejected under 35 U.S.C. 103(a) as being 

unpatentable over Kao et al., (U.S. Patent Application No. 6,275,944 and Kao 

hereinafter), in view of Fidler, (U.S. Publication Application No. 2003/0191817). 

Regarding claim 9, Kao discloses a generic system for integrating a target 
application to an authentication system for authenticating users of the target application, 
the generic system comprising a server coupled to a database of configuration 
information about a login process for the target application (i.e., The first database PKM 
is a globally accessible database wherein all PKM functions preferably are implemented 
by the PKM server)(col. 5, lines 35-50 and col. 6, lines 64-67 and col. 7, lines 1-49), the 
server being programmed to access the database of configuration information to 
conduct the login process with a user of the target application and to use the 
authentication system to authenticate the user and to enable the user to access the 
target application once the authentication system has authenticated the user (col. 8, 
lines 26-67 and col. 9, lines 1-50), the generic system further including an administrative 
application for permitting a system administrator to create and edit the configuration 
information (i.e., performing a given action carried out with respect to users' systems 
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and applications for example, a logon operation, a change of password operation, or a 
logoff operation)(col. 7, lines 24-63), wherein the administrative application is 
programmed to present a graphical user interface to the system administrator for 
creating and editing the configuration information, and the graphical user interface 
includes pages for selecting a natural language for conducting the login process (i.e., 
one of the user preferences for a specific target application may be the language - col. 
5, lines 35-50), and for specifying inbound parameters to be received from the target 
application and outbound parameters to be sent to the target application (i.e., target 
name and target attributes), for configuring at least one authorization setting, for 
configuring at least one token (i.e., key information and target class), and for selecting 
an encryption option for encrypting the token (i.e., a public key (mechanism), a secret 
key (mechanism), or the like)(col. 9, lines 1-45). 

Moreover, Fidler discloses creating and editing the configuration information, and 
selecting a natural language for conducting the login process (page 4-5, par. 46-48 - 
wherein user preferred language information for each target application may be stored 
in the database and retrieved during the login request), 

Therefore, it would have been obvious to a person of ordinary skill in the art at 
the time of applicant's invention to modify teachings of Kao with teachings of Fidler 
because it would allow to include determining and selecting a users preferred language 
for a site (i.e., a target application) as disclosed by Fidler. This modification would have 
been obvious because one of ordinary skill in the art would have been motivated by the 
suggestion of Fidler to efficiently perform cross network functions (i.e., to perform 
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functions on target applications on the network) via applets in multiple languages 
(Fidler, page 1, par. 1). 

Regarding claim 10, Kao further discloses the genetic system as claimed in claim 
9, wherein the graphical user interface includes at least one page for exporting and 
importing authentication integration projects (i.e., the logon coordinator then uses 
information in CIM to sign-on to various target systems and applications based upon the 
targets' protocols and mechanisms)(col. 6, lines 12-50). 

Regarding claim 25, Kao discloses a method of integrating a target application to 
an authentication system for authenticating users of the target application, the method 
comprising a system administrator operating a graphical user interface to enter 
configuration information about a user login process into a database (col. 6, lines 50-67 
and col. 7, lines 1-63), the graphical user interface presenting a series of pages of 
configuration options to the system administrator, which pages for selecting a natural 
language for conducting the login process (i.e., one of the user preferences for a 
specific target application may be the language - col. 5, lines 35-50), and for specifying 
inbound parameters to be received from the target application and outbound 
parameters to be sent to the target application (i.e., target name and target attributes), 
for configuring at least one authorization setting, for configuring at least one token (i.e., 
key information and target class), and for selecting an encryption option for encrypting 
the token (i.e., a public key (mechanism), a secret key (mechanism), or the like)(col. 9, 
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lines 1-45), and once the configuration information has been entered into the database, 
accessing the configuration information in the database to conduct the user login 
process with a user of the target application and using the authentication system to 
authenticate the user and to enable the user to access the target application once the 
authentication system has authenticated the user (col. 6, lines 64-67 and col. 7, lines 1- 
50). 

Moreover, Fidler discloses creating and editing the configuration information, and 
selecting a natural language for conducting the login process (page 4-5, par. 46-48 - 
wherein user preferred language information for each target application may be stored 
in the database and retrieved during the login request), 

Therefore, it would have been obvious to a person of ordinary skill in the art at 
the time of applicant's invention to modify teachings of Kao with teachings of Fidler 
because it would allow to include determining and selecting a users preferred language 
for a site (i.e., a target application) as disclosed by Fidler. This modification would have 
been obvious because one of ordinary skill in the art would have been motivated by the 
suggestion of Fidler to efficiently perform cross network functions (i.e., to perform 
functions on target applications on the network) via applets in multiple languages 
(Fidler, page 1, par. 1). 

Regarding claim 26, Kao discloses the method as claimed in claim 25, which 
includes the graphical user interface presenting to the system administrator at least one 
page for exporting and importing authentication integration projects (i.e., the logon 
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coordinator then uses information in CIM to sign-on to various target systems and 
applications based upon the targets' protocols and mechanisms)(col. 6, lines 12-50). 



Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Arezoo Sherkat whose telephone number is (571) 272- 
3796. The examiner can normally be reached on 8:00-4:30 Monday-Friday. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on (571 ) 272-3795. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 



Conclusion 



A.S. 

Patent Examiner 
Group 2131 
March 6, 2007 
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